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The following Is a fuil description of this Invention, Including the best method 
of performing it known to m©:- 



TITLE 



An Apparatus for Conducting A Secure Electronic Transaction. 

FIELD Or THE INVENTION 
This invention relates to an apparatus for conducting a secure electronic transaction, and to 
a method of performing ail electronic transaction. 

BACKGROUN D ART 

The increasing popularity of the Internet has seen the emergence of electronic commerce. 
The rate of acceptance of electronic commerce has been much slower than the growth rate 
of the Internet itself, primarily because of consumer concerns regarding security and a lack 
of awareness of where products may be purchased. 

SUMM ARY OF THE INVENTION 

In accordance with a first aspect of this invention, there is provided an apparatus for 
conducting a secure electronic transaction, eumpri sing: 

a server including a secure data area in which data regarding vendible 
products and services are stored, said server being connectable ;o a broadcast network and 
being arranged to broadcast information regarding said vendible products and services 
during use, said information including at least some of S3id data, and a unique identifier 
for each vendible prod uct and service; and 

at least one client arranged to receive said information via the broadcast 
network during use, each client including means for establishing, and tenrvpcTariiy 
securing, a return communications link with 'he server so as to faciiitate communication of 
financial information regarding a transaction between the client tind fee server; 

wheieby communication between each client and the server uses the 
broadcast network for communications from the server to the client and the return 
contra unications link for communications from the client to the server, the information 
including the unique identifier being received by the server from the client when the return 
conununkations link is established, and wherein the means for temporarily securing the 
communications link with the server is arranged to exchange public encryption keys 
between the client and the server, and the server is arranged to forward said financial 
information to a financial institution by a further secure communications link whereupon 



said financial institution conducts the financial transaction. 

Its one arrangement, the server is arranged to broadcast a first public encryption key with 
the information regarding each product and service, the client is arranged to encrypt a 
second encryption key using the Firs' encryption key and communicate said encrypted 
second encryption key to the server and the server is arranged to decrypt and recover said 
second encryption key for use in communicating with the client. 

in an alternative arrangement, the server receives a first public encryption key from She 
client and the server is arranged to broadcast a second encryption key to the client using 
the broadcast network. 

in this alternative arrangement, it is pieferred that the server is arranged to encrypt the 
second encryption key using tne first encryption key, and the client is arranged to decrypt 
and recover said second encryption key for use in communicating with the server, 

Preferably, said broadcast network is wireless. 

Preferably, the broadcast network forms part of a digital television broadcast network. 

Preferably, said unique identifier is generated from a pseudo-random sequence. 

Preferably, a seed for the pseudo-random sequence is provided by said financial 
institution. 

Preferabiy, said return communications link is a telephone line. 

Preferably, said data regarding vendible products and services includes data regarding the 
vendor of said products and services, said scrvci being arranged to communicate 
information regarding said vendor to said financial institution. 

Preferably, said server is arranged to continuously broadcast information regarding said 
vendible products and services. 

Preferably, said client comprises a portable or mobile computer. 



Prcfcrabiy, said computer includes a digital television receiver. 

Inferably, said computer include;; a card reader arranged so read a public encryption key 
from a card disposed in use in said card reader. 

Preferably, the server is arranged to create a receipt and an audit trail using the information 
recdved from the client and data stored in the secure data area regarding the vendor arid 
the product. or service, entl the unique identifier associated with lire transaction. 

in accordance with a second aspect of this invention, there is provided a method for 
conducting a secure electronic transaction, comprising the steps of: 

using a broadcast rework to broadcast information regarding vendible 
products and services, said information including for each vendible product and service a 
unique identifier; 

establishing a return communications link between a client and a server, 
whereby communication between the client and the server uses the broadcast network for 
communications from the server to the client and the return communications link for 
communications from the client to the server: 

temporariiy securing the return communications link by exchanging public 
encry ption keys between the client and the server; 

using said temporarily secured communications link to communicate 
financial information regarding ihe transaction; and 

forwarding said financial information to a financial institution via a further 
secure communications lifik- 

Pfefcrablj\ the step of establishing a temporariiy secure contmuntcationslink comprises 
the step of exchanging public encryption keys. 



DETAILED DESCRIPTION OF THE EMBODIME NT 



The embodiment is directed towards an apparatus for conducting a secure 
electronic transaction. The apparatus includes a server having a secure data 
area. In the secure data area, data structures referred to as "proposers" of 
transactions are stored. Each proposer data structure includes the following 
5 dat3: description of the product or service, pricing data, availability and delivery 
data, and financial data on the vendor, such as details of the bank account to 
deposit funds from transactions. Each proposer may also include multimedia 
data containing advertising information, such as images, sounds and the like. A 
proposer data structure exists for each product or service. 

10 The server is connected to a digital television broadcast network arid is arranged 
to continuously broadcast descriptive information on the products and services 
contained in the proposer data structures. The information broadcast by the 
server regarding each product or service includes the description of the product 
or service, pricing data, availability and delivery data, and multimedia data (if 

15 any) from the proposer data structure, and a unique identification code 
generated from a pseudo-random sequence. 

The broadcast information can be received anywhere within the broadcast area, 
thereby avoiding the need to forward information on each product and service to 
each . client separately. 

20 Within the broadcast area, a client receives !he information regarding the 
■ proposers by the broadcast information. The client includes a processing means 
in the form of a computer having a digital television receiving card provided 
therein. The computer receives the broadcast information and displays the 
same to a user. Thus, the user can view the products and services at his or her 

25 leisure. 

When the user wishes to conduct a transaction in relation to one or more 
products, or services, the computer establishes a return communications, link with 
the server. In this regard, since the broadcast network is a transmit only system, 
a lelurn communications link is required for communications from the client to 
30 the server. In the embodiment, the return communications link takes She form o! 



-5- 

a telephone tine. The computer establishes a. communications link with she 
server via the telephone line and transmits the unique identification code of each 
good or service in which the user is interested. The computer also transmits the 
client's public encryption key for the purposes of establishing a secure 
5 communications link. The server receives the information via the return 
communications iink. The server then communicates the server's public 
encryption key to the client via the broadcast network. 

Information regarding the transaction is then exchanged between ihs client and 
the sewer using the broadcast network as the forward communications link 

10 between the server and the client and the telephone line as the return 
communications link between the client and the server. The public encryption 
keys which have been exchanged by the client and server are used for the 
purposes of establishing a temporarily secure connection. Information 
exchanged includes the quantity of each product and service desired to be 

15 purchased by the user and the user's financial information, such as credit card 
details and so forth. 

Upon receipt of the information from the client, the server forwards financial 
information regarding the transactions .to a financial institution via a secure 
communications link. In this regard, the financial information includes the user's 
20 financial information such as the credit card details, and also includes the 
vendors financial information obtained from the corresponding proposer data 
structure. The financial tiansfer is effected by ihs financial institution. 

Once confirmation has been received from the financial institution that the 
transaction has been successfully completed, a receipt is generated and 
25 forwarded to the user via the broadcast network using the encryption key. 

The server further creates an audit trail using the financial information received 
from the user, the financial information stored in each propose! the subject of the 
transaction and the unique identification associated with each product and 
service. The audit trial is stored within ths secure data ares 



For She purposes of ftu& specification it will be clearly understood that the word 
"comprising" means "including but not limited to", and ihaf the word "comprises" has a 
corresponding meaning. 

It should be appreciated that this invention is not limited to the particular embodiment 
described above. 



CLAIMS 



! . An apparatus for conducting a secure electronic transaction, comprising: 

a server including a secure data area in which data regarding vendible 
prtsducts arid services are stored, said server being conneclabte to a broadcast network and 
being arranged ;o broadcast inibrmation regarding said vendible products and services 
during use, said information including at least some of said data, and a unique identifier 
for each vendible prod uct end servi ce; and 

at least oris? client arranged to receive said information via the broadcast 
network during use, each client including means for establishing, arid tempos arily 
Securing, a return communications link with the server so as to facilitate communication of 
financial information regarding a transaction between the client and the server, 

whereby communication between each client and the server uses the 
broadcast network for communications front the server to the client and the return 
commtrnicattons link for communications from the client to the server, the information 
including the unique identifier feeing received by the server from the client when the return 
wramujucaiions link is established, and wherein the means for temporarily securing the 
communications link with the server is arranged to exchange public encryption keys 
between the client and the server, and the server is arranged to forward said fmariciai 
information So a financial institution by a farther secure communications link wheteupon 
said financial institution conducts the financial transaction. 

2. Ait apparatus as claimed in claim 1, wherein the server is arranged to 
broadcast a first public encryption key with the infomiation regarding each product and 
service, the client is arranged to encrypt a second encryption key using the first encryption 
key and communicate said encrypted second encryption key to the server, and lite server is 
arranged to decrypt and recover said second encryption key for use in communicating with 
the client, 

3. An apparatus as claimed in claim 1, wherein the server receives a first 
public encryption key from the client an4 the sewer is arranged to broadcast a second 



encryption key to the client using the broadcast network. 

4. An apparatus as claimed in claim 3, wherein the server is arranged to 
encrypt Uie second encryption key using the first encryption key, and the client is arranged 
to decrypt and recover said second encryption key for use in communicating with the 

5. An apparatus as claimed in any oris of Ihc preceding claims, wherein said 
broadcast network is wireless. 

6v An apparatus as claimed in any one of the preceding claims, wherein the 

broadcast ne twork forms pan of a digital television broadcast network. 

7. Ati apparatus as .claimed in any one of the preceding claims, wherein said 

unique identifier is generated from a pseudo-random sequence. 

S, An apparatus as claimed in claim 7, wherein a seed for the pseudo-random 

sequence is provided fay said financial institution. 

9. An apparatus as claimed in any one of the preceding claims, wherein said 
return ■coranmnications link is a telephone Sine. 

10. An apparatus as claimed in any one of the preceding claims, wherein said 
data regarding vendible products and services includes data regarding the vendor of said 
products and services, said server being arranged to communicate information regarding 
said vendor to said iinancial institution. 

11. An apparatus as claimed in any one of the preceding claims, wherein said 
server is arranged to continuously broadcast information regarding said vendible products 
and services. 



i 2. An apparatus as claimed in any one of the preceding claims, wherein said 

client comprises a computer, 

13. An apparatus as claimed in claim 12, wherein said computer includes a 
digital tel e vi si on rece I ver, 

14. An apparatus as claimed in claim i2 or 13, wherein said computer includes 
a card reader arranged to read a public encryption key from a card disposed in use in said 
card reader. 

1 5. Ac apparatus as claimed in any one of the preceding claims, wherein the 
server is arranged to create a receipt and an audit trail using the information received from 
the client end data stored in She secure data area regarding the vendor find Ihe product or 
service, and the unique identifier associated with live transaction. 

16. A method for conducting a secure electronic transaction, comprising the 

using a broadcast network to broadcast information regarding vendible 
products and services, said information including for each vendible product ar.d service & 
unique identifier; 

establishing a return communications link between a client and a server, 
whereby communication between the client and the server uses the broadcast network for 
communications from the server to die client and the return communications link for 
communications from die client to the server; 

temporarily securing the return communications link by exchanging public 
encryption keys between the client and the server; 

using said temporarily secured communications link io communicate 
financial information regarding the transaction; and 

forwarding said financial information to a financial institution via a further 
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17. An apparatus for conducting a secure electronic transaction substantially 

hereinbefore described. 

IS. A method for conducting a sscimc eiectronjc transaction substantiaiiy 

hereiobefcn; described. 
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